![]() ![]() CS provided signed profile or building a profile in Jamf, System Extension needs to be approved as it's been updated. ![]() Sudo /usr/bin/security cms -S -N COMMON_NAME -i "Falcon Profile.mobileconfig" -o Signed.mobileconfigĬoworker had the same results I did. I used -N instead of -Z with the security command. Verified and it's signed by my organization (Common name). Warning: unable to build chain to self-signed root for signer "(null)"Ĭhecking a client with the profile installed, it shows CrowdStrike Inc. It creates a signed profile but I do get the following warning on create. I moved the certificate, private and public key to "System" and ran the security command again. I set the certificate to trusted in the keychain then attempted to sign it while it was in login and it failed for me with the same error as you get. Once I had the pem file, I loaded it into the keychain, note I didn't get the prompt that they do in their post as to where to install it (10.15 here). ![]() Signing Profiles for Trust Only by Jamf-enrolled Clients Having said that, even after signing it and uploading it to Jamf (jamf shows it as signed as does the client), I still get prompts for the System Extension but it's not that the System Extension is blocked, it's that it's been updated.įollow this guide, create a CSR and I used Jamf to sign it. I'm not certain I'm doing this right but this is how I signed the provided configuration profile from CrowdStrike. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |